Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3f/1e8183-aad1-4fd7-b10f-ffa4950a1ccb/1/p2Sib3Y1UUCqaW4KTx8MMStyd8A.mft
File: p2Sib3Y1UUCqaW4KTx8MMStyd8A.mft (raw, json)
Hash identifier: vEbjMbbgHwgt3fs5m4O5B+zVfbVjpYlBG8akmKqeLxQ=
Subject key identifier: B7:FA:9B:E9:2C:0E:0D:24:6B:FE:74:13:64:CD:88:87:D5:18:2A:C1
Authority key identifier: A7:64:A2:6F:76:35:51:40:AA:69:6E:0A:4F:1F:0C:31:2B:72:77:C0
Certificate issuer: /CN=a764a26f76355140aa696e0a4f1f0c312b7277c0
Certificate serial: 01976884DC8D62FB744F811EA575CC0A1564
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/p2Sib3Y1UUCqaW4KTx8MMStyd8A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3f/1e8183-aad1-4fd7-b10f-ffa4950a1ccb/1/p2Sib3Y1UUCqaW4KTx8MMStyd8A.mft
Manifest number: 12C7
Signing time: Fri 13 Jun 2025 09:00:27 +0000
Manifest this update: Fri 13 Jun 2025 09:00:27 +0000
Manifest next update: Sat 14 Jun 2025 09:00:27 +0000
Files and hashes: 1: BzSGdKXS_5WRE8i4u-1soKeFtzM.roa (hash: vrT1E18BTpX1mS9gu66zvt/nerXMjovuRA/4FT5P190=)
2: p2Sib3Y1UUCqaW4KTx8MMStyd8A.crl (hash: nhMoD/vnDvfOT7CQI1wl4/lUIwrTQEciQY2SM1Sbonc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3f/1e8183-aad1-4fd7-b10f-ffa4950a1ccb/1/p2Sib3Y1UUCqaW4KTx8MMStyd8A.crl
rsync://rpki.ripe.net/repository/DEFAULT/3f/1e8183-aad1-4fd7-b10f-ffa4950a1ccb/1/p2Sib3Y1UUCqaW4KTx8MMStyd8A.mft
rsync://rpki.ripe.net/repository/DEFAULT/p2Sib3Y1UUCqaW4KTx8MMStyd8A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 09:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:68:84:dc:8d:62:fb:74:4f:81:1e:a5:75:cc:0a:15:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a764a26f76355140aa696e0a4f1f0c312b7277c0
Validity
Not Before: Jun 13 09:00:27 2025 GMT
Not After : Jun 14 09:00:27 2025 GMT
Subject: CN=b7fa9be92c0e0d246bfe741364cd8887d5182ac1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:57:e0:ce:c4:41:8c:64:b4:a6:51:02:ce:05:
8c:4a:8c:43:49:d3:75:41:f9:9b:b5:69:71:76:c5:
e4:fa:8d:b6:8d:e8:a8:23:f7:db:74:3d:39:8e:37:
9b:77:53:ae:07:a9:77:f9:a3:8c:22:b1:fc:5d:41:
3f:36:79:66:0b:85:60:5d:1e:e2:ed:29:e7:84:f3:
75:a6:82:33:97:c5:54:a7:18:90:c1:59:60:82:46:
ea:b7:20:e9:7b:7b:00:7f:f2:08:fc:4f:4b:64:31:
2e:b8:cc:bb:4d:3a:32:a6:9d:9d:f6:85:00:11:71:
cb:4e:5f:2a:ac:64:01:52:fe:4e:1a:4d:4d:66:39:
8d:d8:4d:b0:01:ea:d9:49:7f:82:88:f1:7c:74:e2:
92:e7:48:6e:2f:5e:c9:c8:ea:cb:be:d5:5b:b8:a9:
86:69:04:d0:9d:0a:5f:63:d1:fb:4a:a1:d1:83:d7:
11:c6:1d:80:95:f6:c1:e4:ed:43:e1:4c:f8:65:06:
cc:46:73:3d:96:14:95:38:77:0b:e7:b3:73:88:0e:
fd:b2:2e:c1:8f:40:66:e3:15:76:ac:50:6d:66:e5:
d0:2a:4b:29:70:71:9c:82:49:8a:46:bb:cf:82:69:
83:6a:cc:a4:87:32:0e:36:55:aa:4e:13:98:f7:db:
9e:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:FA:9B:E9:2C:0E:0D:24:6B:FE:74:13:64:CD:88:87:D5:18:2A:C1
X509v3 Authority Key Identifier:
keyid:A7:64:A2:6F:76:35:51:40:AA:69:6E:0A:4F:1F:0C:31:2B:72:77:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/p2Sib3Y1UUCqaW4KTx8MMStyd8A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/1e8183-aad1-4fd7-b10f-ffa4950a1ccb/1/p2Sib3Y1UUCqaW4KTx8MMStyd8A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/1e8183-aad1-4fd7-b10f-ffa4950a1ccb/1/p2Sib3Y1UUCqaW4KTx8MMStyd8A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6f:fc:5b:b6:70:a4:3c:41:61:a3:7d:03:b1:33:b0:6a:ee:6d:
e2:ef:ac:e3:50:3c:49:98:65:8d:23:63:ed:55:b1:d6:4d:ca:
f4:63:b3:b9:d2:9c:4f:9a:3f:6a:a8:07:77:e1:f1:21:b0:b9:
e1:88:5a:20:d1:ba:d0:31:60:44:54:c1:9f:11:8a:3a:3a:9d:
2d:36:ba:0b:51:aa:63:23:7e:fb:0e:fb:96:39:8b:4f:09:63:
e1:19:c9:4d:e6:9d:84:2a:80:06:31:08:b3:40:9f:b5:63:06:
67:dd:1c:d9:1e:89:66:99:bf:d5:2f:df:d7:61:3f:27:60:a7:
ad:4e:d4:43:11:ea:41:3d:86:a1:7d:f2:e7:d3:c8:02:e4:fd:
46:83:6d:7a:e2:bc:01:15:61:93:bb:f6:81:65:8b:87:01:00:
1a:48:bf:a9:f5:c1:a8:6f:4c:f4:ed:d5:7f:fb:0d:da:ad:cc:
23:4d:ba:3f:16:d6:bf:75:61:10:a4:c1:42:98:bb:9e:2a:2b:
42:5c:f3:e8:de:64:be:99:7d:b1:d3:07:e7:d3:0f:5c:c6:06:
53:40:8f:39:eb:83:cf:7d:eb:e1:17:a1:6e:b7:5a:62:ce:2d:
4c:8a:71:ad:96:92:52:3e:dd:09:b0:44:2d:7a:ac:cd:07:83:
ad:a6:4e:e9
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdohNyNYvt0T4EepXXMChVkMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGE3NjRhMjZmNzYzNTUxNDBhYTY5NmUwYTRmMWYwYzMxMmI3
Mjc3YzAwHhcNMjUwNjEzMDkwMDI3WhcNMjUwNjE0MDkwMDI3WjAzMTEwLwYDVQQD
EyhiN2ZhOWJlOTJjMGUwZDI0NmJmZTc0MTM2NGNkODg4N2Q1MTgyYWMxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp1fgzsRBjGS0plECzgWMSoxDSdN1
QfmbtWlxdsXk+o22jeioI/fbdD05jjebd1OuB6l3+aOMIrH8XUE/NnlmC4VgXR7i
7SnnhPN1poIzl8VUpxiQwVlggkbqtyDpe3sAf/II/E9LZDEuuMy7TToypp2d9oUA
EXHLTl8qrGQBUv5OGk1NZjmN2E2wAerZSX+CiPF8dOKS50huL17JyOrLvtVbuKmG
aQTQnQpfY9H7SqHRg9cRxh2AlfbB5O1D4Uz4ZQbMRnM9lhSVOHcL57NziA79si7B
j0Bm4xV2rFBtZuXQKkspcHGcgkmKRrvPgmmDasykhzIONlWqThOY99uemQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLf6m+ksDg0ka/50E2TNiIfVGCrBMB8GA1UdIwQY
MBaAFKdkom92NVFAqmluCk8fDDErcnfAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcDJTaWIzWTFVVUNxYVc0S1R4OE1NU3R5ZDhBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZi8xZTgxODMtYWFkMS00ZmQ3LWIxMGYt
ZmZhNDk1MGExY2NiLzEvcDJTaWIzWTFVVUNxYVc0S1R4OE1NU3R5ZDhBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zZi8xZTgxODMtYWFkMS00ZmQ3LWIxMGYtZmZhNDk1MGExY2Ni
LzEvcDJTaWIzWTFVVUNxYVc0S1R4OE1NU3R5ZDhBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAb/xbtnCk
PEFho30DsTOwau5t4u+s41A8SZhljSNj7VWx1k3K9GOzudKcT5o/aqgHd+HxIbC5
4YhaING60DFgRFTBnxGKOjqdLTa6C1GqYyN++w77ljmLTwlj4RnJTeadhCqABjEI
s0CftWMGZ90c2R6JZpm/1S/f12E/J2CnrU7UQxHqQT2GoX3y59PIAuT9RoNteuK8
ARVhk7v2gWWLhwEAGki/qfXBqG9M9O3Vf/sN2q3MI026PxbWv3VhEKTBQpi7nior
Qlzz6N5kvpl9sdMH59MPXMYGU0CPOeuDz33r4RehbrdaYs4tTIpxrZaSUj7dCbBE
LXqszQeDraZO6Q==
-----END CERTIFICATE-----
Generated at Fri Jun 13 18:59:39 2025 by rpki-client